CVE-2019-12581: XSS
First published: Thu Jun 27 2019(Updated: )
A reflective Cross-site scripting (XSS) vulnerability in the free_time_failed.cgi CGI program in selected Zyxel ZyWall, USG, and UAG devices allows remote attackers to inject arbitrary web script or HTML via the err_msg parameter.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zyxel UAG2100 | <=4.18\(aaiz.1\)c0 | |
| Zyxel UAG2100 | ||
| Zyxel UAG4100 | <=4.18\(aatd.1\)c0 | |
| Zyxel UAG4100 | ||
| Zyxel uag5100 | <=4.18\(aapn.1\)c0 | |
| Zyxel UAG5100 Firmware | ||
| Zyxel USG 110 Firmware | <=4.30 | |
| Zyxel USG 110 | ||
| Zyxel USG210 Firmware | <=4.30 | |
| Zyxel USG210 Firmware | ||
| Zyxel USG 310 firmware | <=4.30 | |
| Zyxel USG 310 | ||
| Zyxel USG1100 firmware | <=4.30 | |
| Zyxel USG1100 firmware | ||
| Zyxel USG1900 Firmware | <=4.30 | |
| Zyxel USG1900 Firmware | ||
| Zyxel USG2200-VPN Firmware | <=4.30 | |
| Zyxel USG2200-VPN Firmware |
Remedy
https://sec-consult.com/en/blog/advisories/reflected-cross-site-scripting-in-zxel-zywall/index.html
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://n-thumann.de/blog/zyxel-gateways-missing-access-control-in-account-generator-xss/
- https://sec-consult.com/en/blog/advisories/reflected-cross-site-scripting-in-zxel-zywall/index.html
- https://www.zyxel.com/support/vulnerabilities-related-to-the-Free-Time-feature.shtml
- https://www.zyxel.com/us/en/
Frequently Asked Questions
What is the vulnerability ID for this XSS vulnerability?
The vulnerability ID for this XSS vulnerability is CVE-2019-12581.
What is the severity of CVE-2019-12581?
CVE-2019-12581 has a severity of medium with a CVSS score of 6.1.
Which devices are affected by CVE-2019-12581?
Selected Zyxel ZyWall, USG, and UAG devices are affected by CVE-2019-12581.
How can an attacker exploit CVE-2019-12581?
An attacker can exploit CVE-2019-12581 by injecting arbitrary web script or HTML via the err_msg parameter in the free_time_failed.cgi CGI program.
Are there any known fixes or patches for CVE-2019-12581?
Yes, there are fixes and patches available for CVE-2019-12581. It is recommended to update to the latest firmware versions provided by Zyxel.
- agent/references
- agent/type
- agent/remedy
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/weakness
- agent/author
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/zyxel
- canonical/zyxel uag2100
- version/zyxel uag2100/4.18\(aaiz.1\)c0
- canonical/zyxel uag4100
- version/zyxel uag4100/4.18\(aatd.1\)c0
- canonical/zyxel uag5100
- version/zyxel uag5100/4.18\(aapn.1\)c0
- canonical/zyxel uag5100 firmware
- canonical/zyxel usg 110 firmware
- version/zyxel usg 110 firmware/4.30
- canonical/zyxel usg 110
- canonical/zyxel usg210 firmware
- version/zyxel usg210 firmware/4.30
- canonical/zyxel usg 310 firmware
- version/zyxel usg 310 firmware/4.30
- canonical/zyxel usg 310
- canonical/zyxel usg1100 firmware
- version/zyxel usg1100 firmware/4.30
- canonical/zyxel usg1900 firmware
- version/zyxel usg1900 firmware/4.30
- canonical/zyxel usg2200-vpn firmware
- version/zyxel usg2200-vpn firmware/4.30